Privacy Policy

From time to time, you may be asked to submit personal information about yourself such as your name and e-mail address, in order to receive or use services.

SDS School Records Management will ensure that any information you send is held securely in accordance with the Data Protection Act 1998 and furthermore to the GPDR as from 25 May 2018 (see below). We do not pass on your information to any other companies, and we will not contact you with marketing material unless you specifically request it.

You may at any time, request a copy of the personal information that we may hold about you, and also amend any inaccuracies. You may also request that your details be removed from our database should you no longer require any of the services we provide.

If you have any questions regarding our privacy policy, or would like to amend, view or remove any information we hold about you, or would like to use any of the material on this site for presentations, publications, please write to us at the address below.

General Data Protection Regulation (GDPR) Statement - SDS Group

Introduction

The new European Union General Data Protection Regulation (EU GDPR) will come into effect in the UK from 25th May 2018. The new Regulation enhances the safeguards for individuals in the existing Data Protection Act which will also be replaced with a new UK Data Protection Bill in 2018.

SDS Group is committed to high standards of information security, privacy and transparency. We place ahigh priority on protecting and managing. The company will comply with applicable GDPR regulations when they take effect in 2018, including as a data processor, while also working closely with ourclients and partners to meet contractual obligations for our procedures, products and services.

The Regulation gives individuals the right to ask businesses for detailed information about how their Personally Identifiable Information (PII) is stored and processed. In the Regulation there is no distinction between personal data about individuals in their private, public or work roles.

1. Compliance

SDS Group has always taken the security of information very seriously and has introduced systems tohelp ensure that it processes any PII securely and in accordance with all applicable regulatory and legislative requirements. This Policy sets out our objective of meeting these requirements in a logical method.

2. SDS Group websites and web-based applications

SDS Group offers a range of web and web-based applications and as such the company is committed to providing technology solutions to support customers' GDPR obligations. Our IT infrastructure is rigorously and regularly SOAK & Stress tested for:

Security

Data Integrity

Performance

Control and Audit

Back-up and Resilience

Risk

SDS ensure that where clients’ data which is sensitive, or falls within the parameters of the GDPR regulations, that only London UK Cloud based servers are used (this way we can guarantee thatyour data will never find its way onto a European, USA or Worldwide Cloud based set-up).

3. SDS Group and Data we may hold

SDS Group as a company holds very little relevant Data. That which we do hold is not financial and only minimal personal data for archiving purposes (please see Data Protection Bill -GDPR (Archiving Section -P138, part 6, para 26, section 1).

However, all Data we hold is on our private Servers drives, and that is stored behind a secure SSL. This provides encrypted security.

SDS retains no rights of ownership of any data which we scan or process for our clients. All copyrights and proprietorships remain with our clients. Our clients can have all their data returned to them at requested without any penalty or forfeit.